CVE-2020-7106 — Cross-site Scripting in Cacti

CWE-79 — Cross-site Scripting7 documents6 sources

Severity

6.1MEDIUMNVD

EPSS

4.1%

top 11.40%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cacti Debian Linux Fedoraproject Extra Packages FOR Enterprise Linux +3 more

Timeline

PublishedJan 16

Latest updateMay 24

Description

Cacti 1.2.8 has stored XSS in data_sources.php, color_templates_item.php, graphs.php, graph_items.php, lib/api_automation.php, user_admin.php, and user_group_admin.php, as demonstrated by the description parameter in data_sources.php (a raw string from the database that is displayed by $header to trigger the XSS).

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.7

Affected Packages5 packages

▶NVDcacti/cacti< 1.2.9

▶Debiancacti/cacti< 1.2.9+ds1-1+3

▶NVDopensuse/leap15.1

▶NVDopensuse/backports_sle15.0

▶NVDfedoraproject/extra_packages7.0, 8.0, 9.0+2

Also affects: Debian Linux 8.0, 9.0, Fedora 30, 31

🔴Vulnerability Details

GHSA

GHSA-4x8f-h58h-jh6h: Cacti 1↗2022-05-24

▶

CVEList

CVE-2020-7106: Cacti 1↗2020-01-16

▶

OSV

CVE-2020-7106: Cacti 1↗2020-01-16

▶

📋Vendor Advisories

Debian

CVE-2020-7106: cacti - Cacti 1.2.8 has stored XSS in data_sources.php, color_templates_item.php, graphs...↗2020

▶

💬Community

Bugzilla

CVE-2020-7106 cacti: XSS due to lack of escaping on some pages [epel-all]↗2020-01-29

▶

Bugzilla

CVE-2020-7106 cacti: XSS due to lack of escaping on some pages↗2020-01-29

▶